secpath100N配置
dis ver
Copyright Notice:
All rights reserved (Mar 23 2005).
Without the owner's prior written consent, no decompiling
nor reverse-engineering shall be allowed.
Huawei-3Com Versatile Routing Platform Software
VRP(R) software, Version 3.30, Release 0004
Copyright (c) 2000-2004 Huawei Tech. Co.,Ltd. All rights reserved.
Quidway SecPath 100N uptime is 0 week, 0 day, 0 hour, 13 minutes
Router type: SecPath 100N
CPU type: Mips IDT RC32438 266MHz
128M bytes DDR SDRAM Memory
8M bytes Flash Memory
Pcb Version:3.0
Logic Version:1.0
BootROM Version:1.01
[SLOT 0] 2FE (Hardware)1.0, (Driver)1.0, (Cpld)1.0
[Quidway]dis cu
#
sysname Quidway
#
local-user telnet
local-user telnet service-type telnet
local-user telnet level 3
#
dialer-rule 1 ip permit
#
interface Aux0
async mode flow
link-protocol ppp
#
interface Dialer1
link-protocol ppp
ppp pap local-user 123 password simple 123
mtu 1450
tcp mss 1024
ip address ppp-negotiate
dialer user quidway
dialer-group 1
dialer bundle 1
nat outbound 2000
#
interface Ethernet0/0
pppoe-client dial-bundle-number 1
#
interface Ethernet0/1
tcp mss 1024
ip address 192.168.1.254 255.255.255.0
firewall packet-filter 3000 inbound
#
interface NULL0
#
acl number 2000
rule 0 permit source 192.168.1.0 0.0.0.255
rule 1 deny
#
acl number 3000
rule 0 deny tcp destination-port eq 135
rule 1 deny udp destination-port eq 135
rule 2 deny udp destination-port eq netbios-ns
rule 3 deny udp destination-port eq netbios-dgm
rule 4 deny tcp destination-port eq 139
rule 5 deny tcp destination-port eq 445
rule 6 deny tcp destination-port eq 539
rule 7 deny udp destination-port eq 593
rule 8 deny tcp destination-port eq 593
rule 9 deny udp destination-port eq 1434
rule 10 deny tcp destination-port eq 9996
rule 11 deny tcp destination-port eq 5554
rule 12 deny udp destination-port eq 9996
rule 13 deny udp destination-port eq 5554
rule 14 deny tcp destination-port eq 137
rule 15 deny udp destination-port eq 1025
rule 16 deny tcp destination-port eq 9995
rule 17 deny udp destination-port eq 9995
rule 18 deny udp destination-port eq 1068
rule 19 deny udp destination-port eq 1023
rule 20 deny udp destination-port eq tftp
rule 21 deny udp destination-port eq netbios-ssn
rule 22 deny udp destination-port eq 445
rule 23 deny udp destination-port eq 539
rule 24 deny tcp destination-port eq 4444
rule 25 deny tcp destination-port eq 138
rule 26 deny tcp destination-port eq 1025
rule 27 deny tcp destination-port eq 1068
rule 28 deny tcp destination-port eq 1023
#
ip route-static 0.0.0.0 0.0.0.0 Dialer 1 preference 60
#
user-interface con 0
user-interface aux 0
user-interface vty 0 4
authentication-mode local
#
return
[Quidway]